first commit

2024-08-09 00:39:27 +02:00
commit 79688abe2e
5698 changed files with 497838 additions and 0 deletions
--- a/calcom/apps/web/pages/api/auth/saml/authorize.ts
+++ b/calcom/apps/web/pages/api/auth/saml/authorize.ts
@@ -0,0 +1,23 @@
+import type { OAuthReq } from "@boxyhq/saml-jackson";
+import type { NextApiRequest, NextApiResponse } from "next";
+
+import jackson from "@calcom/features/ee/sso/lib/jackson";
+import type { HttpError } from "@calcom/lib/http-error";
+
+export default async function handler(req: NextApiRequest, res: NextApiResponse) {
+  const { oauthController } = await jackson();
+
+  if (req.method !== "GET") {
+    return res.status(400).send("Method not allowed");
+  }
+
+  try {
+    const { redirect_url } = await oauthController.authorize(req.query as unknown as OAuthReq);
+
+    return res.redirect(302, redirect_url as string);
+  } catch (err) {
+    const { message, statusCode = 500 } = err as HttpError;
+
+    return res.status(statusCode).send(message);
+  }
+}
--- a/calcom/apps/web/pages/api/auth/saml/callback.ts
+++ b/calcom/apps/web/pages/api/auth/saml/callback.ts
@@ -0,0 +1,18 @@
+import type { NextApiRequest, NextApiResponse } from "next";
+
+import jackson from "@calcom/features/ee/sso/lib/jackson";
+import { defaultHandler, defaultResponder } from "@calcom/lib/server";
+
+async function postHandler(req: NextApiRequest, res: NextApiResponse) {
+  const { oauthController } = await jackson();
+
+  const { redirect_url } = await oauthController.samlResponse(req.body);
+
+  if (redirect_url) {
+    res.redirect(302, redirect_url);
+  }
+}
+
+export default defaultHandler({
+  POST: Promise.resolve({ default: defaultResponder(postHandler) }),
+});
--- a/calcom/apps/web/pages/api/auth/saml/token.ts
+++ b/calcom/apps/web/pages/api/auth/saml/token.ts
@@ -0,0 +1,13 @@
+import type { NextApiRequest } from "next";
+
+import jackson from "@calcom/features/ee/sso/lib/jackson";
+import { defaultHandler, defaultResponder } from "@calcom/lib/server";
+
+async function postHandler(req: NextApiRequest) {
+  const { oauthController } = await jackson();
+  return await oauthController.token(req.body);
+}
+
+export default defaultHandler({
+  POST: Promise.resolve({ default: defaultResponder(postHandler) }),
+});
--- a/calcom/apps/web/pages/api/auth/saml/userinfo.ts
+++ b/calcom/apps/web/pages/api/auth/saml/userinfo.ts
@@ -0,0 +1,34 @@
+import type { NextApiRequest } from "next";
+import z from "zod";
+
+import jackson from "@calcom/features/ee/sso/lib/jackson";
+import { HttpError } from "@calcom/lib/http-error";
+import { defaultHandler, defaultResponder } from "@calcom/lib/server";
+
+const extractAuthToken = (req: NextApiRequest) => {
+  const authHeader = req.headers["authorization"];
+  const parts = (authHeader || "").split(" ");
+  if (parts.length > 1) return parts[1];
+
+  // check for query param
+  let arr: string[] = [];
+  const { access_token } = requestQuery.parse(req.query);
+  arr = arr.concat(access_token);
+  if (arr[0].length > 0) return arr[0];
+
+  throw new HttpError({ statusCode: 401, message: "Unauthorized" });
+};
+
+const requestQuery = z.object({
+  access_token: z.string(),
+});
+
+async function getHandler(req: NextApiRequest) {
+  const { oauthController } = await jackson();
+  const token = extractAuthToken(req);
+  return await oauthController.userInfo(token);
+}
+
+export default defaultHandler({
+  GET: Promise.resolve({ default: defaultResponder(getHandler) }),
+});